Security Advisory

CVE-2007-1115

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2007-02-26 23:00:00

Last updated 2024-08-07 12:43:22

Assigner mitre

State PUBLISHED

Description

The child frames in Opera 9 before 9.20 inherit the default charset from the parent window when a charset is not specified in an HTTP Content-Type header or META tag, which allows remote attackers to conduct cross-site scripting (XSS) attacks, as demonstrated using the UTF-7 character set.

← Browse all CVEs View on cve.org ↗